0.008 Low
EPSS
Percentile
81.2%
Haraka is vulnerable to remote code execution (RCE). A malicious user can pass a malicious zip file as an attachment to execute arbitrary code.
www.securityspace.com/pt/smysecure/catid.html?id=1.3.6.1.4.1.25623.1.0.106547
github.com/haraka/Haraka/pull/1606
github.com/rapid7/metasploit-framework/pull/7873